1. Add an EE-specific spec.

2. The code deleting redundant access levels is different for EE, since
   EE protected branches can have 0 or more access levels, while CE
   protected branches can have a single access level.

Existing access levels (apart from 'developer' access levels) should not
be removed while using the branch protection API.